Draft — This document is pending legal review and is not yet legally binding. For questions, contact richard@regtwinai.com.
Last updated: March 22, 2026
We collect information you provide directly: name, email address, organization name, and role when you create an account. We also collect usage data including pages visited, features used, and interaction patterns to improve the platform.
We use your information to provide and maintain the RegTwin AI platform, process your regulatory compliance data, send important account notifications, and improve our AI agents and platform capabilities. We do not sell your personal information to third parties.
Your regulatory data is encrypted at rest and in transit using AES-256 and TLS 1.3 respectively. We implement strict access controls, audit logging, and follow SOC 2 Type II security practices. All data is hosted on SOC 2 compliant infrastructure.
We retain your account data for as long as your account is active. Regulatory analysis data, audit trails, and chain-of-thought logs are retained according to your organization's retention policy settings. You may request deletion of your data at any time.
We use Anthropic Claude for AI processing, Vercel for hosting, and Resend for transactional email. Each provider is bound by data processing agreements. Your regulatory data is never used to train AI models.
You have the right to access, correct, or delete your personal data. You may export your compliance data at any time. To exercise these rights, contact us at richard@regtwinai.com.
For privacy-related inquiries, contact Richard Leclézio at richard@regtwinai.com.